home

rmx-500audio.sys

PIONEER CORPORATION

Publisher:
PIONEER CORPORATION  (signed and verified)

MD5:
b95ccdefb96d7119d71c58626f698428

SHA-1:
b76e059b69b9755429cfb5acdaf54dc5f78528e6

SHA-256:
efcaf40b6ff32a8dd7b80f6fe6b5e4517485662a214fe37dd28c1cf334c0068c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 12:53:22 AM UTC  (today)

File size:
33 KB (33,776 bytes)

File type:
Driver (Win32 SYS)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\rmx-500audio.sys

Digital Signature
Signed by:
PIONEER CORPORATION

Authority:
Symantec Corporation

Valid from:
6/12/2013 5:00:00 PM

Valid to:
6/13/2014 4:59:59 PM

Subject:
CN=PIONEER CORPORATION, O=PIONEER CORPORATION, L=Kawasaki-Shi, S=Kanagawa-Ken, C=JP, SERIALNUMBER=0200-01-086473, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.3=JP

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
0D410A9DA7FE5763D5CB0C9E8BF194D4

File PE Metadata
Compilation timestamp:
2/2/2014 9:28:44 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

CTPH (ssdeep):
384:WkOM5uPAQAANegxe/Q3FZT4PYekNDMyvt88nH4awuUfT8rrwCx1yMinYPLTArckb:F3ZANVe4FZT4P+ya6TgwU1UW46A

Entry address:
0x808D

Entry point:
8B, FF, 55, 8B, EC, E8, BD, FF, FF, FF, 5D, E9, 69, FF, FF, FF, CC, CC, CC, 1C, 81, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 42, 84, 00, 00, 18, 40, 00, 00, 04, 81, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 78, 84, 00, 00, 00, 40, 00, 00, A4, 81, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 4C, 85, 00, 00, A0, 40, 00, 00, 10, 81, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A2, 85, 00, 00, 0C, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 64, 84, 00, 00, 50, 84, 00, 00, 00...
 
[+]

Entropy:
6.5913

Code size:
19.5 KB (19,968 bytes)

Scan rmx-500audio.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.